OpenStack Dashboard Login Panel - Detect

What is the "OpenStack Dashboard Login Panel - Detect?"

The "OpenStack Dashboard Login Panel - Detect" module is designed to detect the presence of the OpenStack Dashboard login panel. OpenStack Dashboard, also known as Horizon, is a web-based interface for managing OpenStack cloud environments. This module specifically focuses on detecting the login panel, which allows users to authenticate and access the OpenStack Dashboard.

This module is categorized as informative, meaning it provides information about the presence of the login panel but does not indicate any vulnerabilities or misconfigurations.

Impact

The impact of this module is purely informational. It helps users identify whether the OpenStack Dashboard login panel is present or not. No actions are taken beyond reporting the detection.

How the module works?

The "OpenStack Dashboard Login Panel - Detect" module works by sending HTTP requests to specific paths associated with the login panel. It checks for two matching conditions:

- The response body of the HTTP request should contain the HTML title tag "<title>Login - OpenStack Dashboard</title>", indicating the presence of the login panel. - The HTTP response status code should be 200, indicating a successful request.

If both conditions are met, the module reports the detection of the OpenStack Dashboard login panel.

Here is an example of an HTTP request sent by the module:

GET /dashboard/auth/login/ HTTP/1.1
Host: example.com

The module sends this request to the "/dashboard/auth/login/" path, which is one of the paths associated with the OpenStack Dashboard login panel. It expects a response with a status code of 200 and the HTML title tag mentioned earlier.